Why Does HIPAA/HITECH Compliance Matter?
A Covered Entity(CE) or Business Associate(BA) needs to legally comply with the federal HIPAA/HITECH compliance assurance’s security, privacy, and breach rules/standards to protect individuals’ electronic Protected Health Information (ePHI) that is created, received, used, or maintained. The HIPAA Privacy Rule establishes national standards to protect individuals’ medical records and other personal health information and applies to health plans, healthcare clearinghouses, business associates, and those health care providers that conduct certain health care transactions electronically. The security rule requires appropriate administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and security of electronic protected health information. The breach rule covers the breach notification procedures introduced by HITECH act for unsecured protected health information.